Post Job Free
Sign in

Engineer Security

Location:
Brooklyn, NY, 11201
Posted:
October 03, 2012

Contact this candidate

Resume:

summary of qualifications

A Software Engineer with seven years of development work experience,

specializing in the development, design, and architecture of the

software development lifecycle.

WORk Experience

Senior Security Engineer November 2007 - March 2012

Vigilant, LLC Jersey City, NJ

. Drafted initial requirements documents with 100 requirements at

software development project milestone, including the design

development and user acceptance testing stages, for twelve custom

network security solutions.

. Developed customized security solution operational procedures for four

financial firms.

. Identified security gaps and retrieved system, server, firewall,

router, and application logs used to revise three existing client

security systems as necessary.

. Gathered and analyzed security operational manuals, development

documentation, and Perl and Python scripts.

. Performed client data analysis, identifying and resolving coding and

ArcSight system issues.

. Gathered client needs and specifications during weekly meetings.

. Created high Level documentation at every project milestone describing

security monitoring gaps, including Malware, Intrusion Detection and

Account Compromise events, and planned corrections.

. Generated twenty pages of technical documentation that set software

development parameters and necessary data, server hardware, and

network types, as well as system permissions and account privileges.

. Developed Perl and Python scripts that performed data retrieval and

manipulation.

. Designed and implemented a metrics program handling 1.5M events per

day for ArcSight system capacity planning using Nagios and Cacti.

. Created Perl scripts and MS Excel spreadsheets that performed and

presented regression analysis on operating system metrics, including

CPU Usage, Load, I/O Operations, and Network Performance statistics

used for capacity planning.

. Organized and performed monthly system and network upgrades,

software updates and migration, and OS patching.

. Trained five team members on SIEM content creation and usage.

. Designed and led thirty training workshops for up to ten staff on the

ArcSight system.

Security Engineer June 2006 - August 2007

American Home Mortgage Melville, NY

. Developed and implemented a Nagios system health monitoring solution

and troubleshot malfunctioning services and applications within the 2K

server corporate network.

. Trained a three member Enterprise Monitoring Team on the Nagios

monitoring solution.

. Designed and implemented an internal accounts payable system using

PHP, JavaScript, and Crystal Reports to assist a thirty-member

Accounts Department tracking and managing firm expenses.

. Performed monthly security assessments of company assets and emailed

reports to Senior Management identifying and analyzing the large

scale implications of outstanding security threats.

. Performed quarterly firewall reconciliation reviews as a part of

the ten member Firewall Team by obtaining and analyzing device

firewall rules, determining updating and removal needs, and

proposing and reviewing new rules.

. Designed and developed an Account Control system that enabled

secure administration of 8K user accounts.

. Reviewed and redesigned hundreds of spam filter rules using regular

expressions and Perl scripts.

. Integrated five web applications, including an accounts payable

application, account control systems, a Nagios system, and two

additional software products with Active Directory, ensuring

secure account management.

. Built and updated rules for ten new proxy servers used to monitor and

filter malicious content across several hundred nationwide regional

office hubs.

Systems Administrator March 2003 - June 2006

Polytechnic University Brooklyn, NY

. Maintained, upgraded, and patched a web and application server with

200 users.

. Designed and implemented security architecture for internal database

and server level systems.

. Maintained and upgraded custom applications using VBA, C#, and .NET.

. Migrated the network from a Windows to a Unix Server.

Education

Bachelor of Science (B.S.), Computer Engineering Graduated June 2006

Polytechnic University Brooklyn, NY

technical skills

. Security: Penetration Testing, Vulnerability Analysis, Risk Assessment, Code Analysis

. Monitoring Software: ArcSight, Nagios, Cacti

. Server: RedHat, SuSe, Ubuntu BSD - FreeBSD

. Languages: C, C++, Java,Perl, PHP, Python, VBScript, Ruby

. Databases: MySQL, MS SQL, Postgres

. Project Management: Planning, Requirements Gathering, Software

Documentation, User Acceptance Testing

. Test Driven Development, Unit Testing, Code Review

. Software: Microsoft Excel, Microsoft Word, Microsoft PowerPoint,

Crystal Reports

. Frameworks: Ruby on Rails, Django



Contact this candidate